<div dir="ltr"><div><div><div><div><div><div>Hello,<br></div><div>I am developing a simple client/server application with openSSL.<br><br></div>Using
wireshark, I can see in the Client Hello message that there is an
extension signature_algorithms, in which are fields Signature Hash
Algorithms. <br></div>I can see a lot of supported algorithms, such as
RSA, DSA, ECDSA in the fields <i>Signature Hash Algorithm Signature</i> ,and SHA1,
SHA256, MD5, ... for <i>Signature Hash Algorithm Hash</i>.<br><br></div><div>The same behavior happens in the Server Key Exchange message.<br></div>My question is: how can I restrict this list of algorithms to use only one?<br></div>Note
that I am already using the function set_cipher_list(), and as a
consequence, the field <i>Cipher Suites</i> in those messages only contains the
suite I want to use. So I don't know what is the API function to use
instead of ssl_ctx_set_cipher_list().<br><br></div><div>I didn't find anything in the documentation.<br></div><div><br></div>Thank you for your help,<br></div>Jack</div>